Moderate CentOS net-snmp Security Update

Metadata

high
7.5
net-snmp-5.5-54.el6_7.1.i686.rpm, net-snmp-5.5-54.el6_7.1.src.rpm, net-snmp-5.5-54.el6_7.1.x86_64.rpm, net-snmp-5.7.2-20.el7_1.1.src.rpm, net-snmp-5.7.2-20.el7_1.1.x86_64.rpm, net-snmp-agent-libs-5.7.2-20.el7_1.1.i686.rpm, net-snmp-agent-libs-5.7.2-20.el7_1.1.x86_64.rpm, net-snmp-devel-5.5-54.el6_7.1.i686.rpm, net-snmp-devel-5.5-54.el6_7.1.x86_64.rpm, net-snmp-devel-5.7.2-20.el7_1.1.i686.rpm, net-snmp-devel-5.7.2-20.el7_1.1.x86_64.rpm, net-snmp-gui-5.7.2-20.el7_1.1.x86_64.rpm, net-snmp-libs-5.5-54.el6_7.1.i686.rpm, net-snmp-libs-5.5-54.el6_7.1.x86_64.rpm, net-snmp-libs-5.7.2-20.el7_1.1.i686.rpm, net-snmp-libs-5.7.2-20.el7_1.1.x86_64.rpm, net-snmp-perl-5.5-54.el6_7.1.i686.rpm, net-snmp-perl-5.5-54.el6_7.1.x86_64.rpm, net-snmp-perl-5.7.2-20.el7_1.1.x86_64.rpm, net-snmp-python-5.5-54.el6_7.1.i686.rpm, net-snmp-python-5.5-54.el6_7.1.x86_64.rpm, net-snmp-python-5.7.2-20.el7_1.1.x86_64.rpm, net-snmp-sysvinit-5.7.2-20.el7_1.1.x86_64.rpm, net-snmp-utils-5.5-54.el6_7.1.i686.rpm, net-snmp-utils-5.5-54.el6_7.1.x86_64.rpm, net-snmp-utils-5.7.2-20.el7_1.1.x86_64.rpm
CVE-2015-5621
rhn.redhat.com, lists.centos.org, lists.centos.org
2015-08-17
2017-07-27 19:09
ALAS-2015-590
CVE-2015-5621 net-snmp
CVE-2015-5621
2017-04-01 19:09
2017-01-05 20:13

Description


Updated net-snmp packages that fix one security issue are now available
for Red Hat Enterprise Linux 6 and 7.

Red Hat Product Security has rated this update as having Moderate
security impact. A Common Vulnerability Scoring System (CVSS) base score,
which gives a detailed severity rating, is available from the CVE link in
the References section.

The net-snmp packages provide various libraries and tools for the Simple
Network Management Protocol (SNMP), including an SNMP library, an
extensible agent, tools for requesting or setting information from SNMP
agents, tools for generating and handling SNMP traps, a version of the
netstat command which uses SNMP, and a Tk/Perl Management Information Base
(MIB) browser.

It was discovered that the snmp_pdu_parse() function could leave
incompletely parsed varBind variables in the list of variables. A remote,
unauthenticated attacker could use this flaw to crash snmpd or,
potentially, execute arbitrary code on the system with the privileges of
the user running snmpd. (CVE-2015-5621)

Red Hat would like to thank Qinghao Tang of QIHU 360 company, China for
reporting this issue.

All net-snmp users are advised to upgrade to these updated packages,
which contain a backported patch to correct this issue.
Please see https://www.redhat.com/footer/terms-of-use.html

Am I vulnerable?

The constraints below list the versions that this vulnerability is patched in, and versions that are unaffected. If a patch is ready but unrealeased, then it is pending.

Or, you can just let us figure it out for you! Appcanary continously monitor your installed packages, and tell you if any of them are vulnerable.

Sign up for monitoring

Affected package information

Release Package Patched in
6 net-snmp net-snmp-5.5-54.el6_7.1.src.rpm
net-snmp net-snmp-5.5-54.el6_7.1.x86_64.rpm
net-snmp net-snmp-5.5-54.el6_7.1.i686.rpm
net-snmp-devel net-snmp-devel-5.5-54.el6_7.1.i686.rpm
net-snmp-devel net-snmp-devel-5.5-54.el6_7.1.x86_64.rpm
net-snmp-libs net-snmp-libs-5.5-54.el6_7.1.x86_64.rpm
net-snmp-libs net-snmp-libs-5.5-54.el6_7.1.i686.rpm
net-snmp-perl net-snmp-perl-5.5-54.el6_7.1.i686.rpm
net-snmp-perl net-snmp-perl-5.5-54.el6_7.1.x86_64.rpm
net-snmp-python net-snmp-python-5.5-54.el6_7.1.x86_64.rpm
net-snmp-python net-snmp-python-5.5-54.el6_7.1.i686.rpm
net-snmp-utils net-snmp-utils-5.5-54.el6_7.1.x86_64.rpm
net-snmp-utils net-snmp-utils-5.5-54.el6_7.1.i686.rpm
7 net-snmp net-snmp-5.7.2-20.el7_1.1.src.rpm
net-snmp net-snmp-5.7.2-20.el7_1.1.x86_64.rpm
net-snmp-agent-libs net-snmp-agent-libs-5.7.2-20.el7_1.1.x86_64.rpm
net-snmp-agent-libs net-snmp-agent-libs-5.7.2-20.el7_1.1.i686.rpm
net-snmp-devel net-snmp-devel-5.7.2-20.el7_1.1.i686.rpm
net-snmp-devel net-snmp-devel-5.7.2-20.el7_1.1.x86_64.rpm
net-snmp-gui net-snmp-gui-5.7.2-20.el7_1.1.x86_64.rpm
net-snmp-libs net-snmp-libs-5.7.2-20.el7_1.1.i686.rpm
net-snmp-libs net-snmp-libs-5.7.2-20.el7_1.1.x86_64.rpm
net-snmp-perl net-snmp-perl-5.7.2-20.el7_1.1.x86_64.rpm
net-snmp-python net-snmp-python-5.7.2-20.el7_1.1.x86_64.rpm
net-snmp-sysvinit net-snmp-sysvinit-5.7.2-20.el7_1.1.x86_64.rpm
net-snmp-utils net-snmp-utils-5.7.2-20.el7_1.1.x86_64.rpm